India's largest-restaurant guide Zomato appears to have suffered a major security breach.
According to a report in security blog HackRead, "a vendor going by the online handle of 'nclay' is claiming to have hacked Zomato and selling the data of its 17 million registered users on a popular Dark Web marketplace."
The database reportedly includes emails and password hashes of Zomato's registered users. The price for the set of the whole package is claimed to be $1,001.43. The vendor has also shared a trove of sample data to prove that its data is legit.
The HackRead claims that it tested the sample data on Zomato.com's login page and found that "each and every account mentioned in the list exists on Zomato."
The blog reportedly also sent password reset email to some of the email addresses given in the data to further check the veracity of 'nclay's' claim. This revealed that the data is indeded 'genuine' as email IDs are registered with Zomato.
Share This Post
